CVE-2004-0398

Publication date 7 July 2004

Last updated 24 July 2024


Ubuntu priority

Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and earlier, as used by cadaver before 0.22, allows remote WebDAV servers to execute arbitrary code on the client.

Status

Package Ubuntu Release Status
cadaver 7.04 feisty
Fixed 0.22.2-1.1
6.10 edgy
Fixed 0.22.2-1.1
6.06 LTS dapper
Fixed 0.22.2-1.1
neon 7.04 feisty
Fixed 0.25.5.dfsg-5
6.10 edgy
Fixed 0.25.5.dfsg-5
6.06 LTS dapper
Fixed 0.25.5.dfsg-5
neon24 7.04 feisty Not in release
6.10 edgy
Fixed 0.24.7.dfsg-3ubuntu1
6.06 LTS dapper
Fixed 0.24.7.dfsg-3ubuntu1
neon26 7.04 feisty
Fixed 0.26.3-1
6.10 edgy Not in release
6.06 LTS dapper Not in release